IP filtering policies control access to managed APIs. An IP filtering policy defines a set of access rules that determine the IP addresses that are allowed to access an API and the IP addresses that are blocked from accessing an API. You must be assigned the Deployer role to assign IP filtering policies to managed APIs.
When API Center receives a request to access a managed API, it checks the request IP address against the rules in the policy, in the order that the rules are listed in. API Center applies the first rule that matches the request IP address to the request.
Note: You can't use a combination of allow and deny IP filtering rules for the same API.
IP filtering policy example
The following table lists rules that allow access to specific IP address ranges:
Access Type
From IP address
To IP address
Allow
9.10.11.12
9.10.25.27
Allow
5.6.7.8
5.6.15.17
Allow
1.2.3.4
1.2.12.14
The following table lists rules that deny access to all IP addresses: